Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/vOH4_altvG4zW23Iq0r8OE3XjFY.roa
File: vOH4_altvG4zW23Iq0r8OE3XjFY.roa (raw, json)
Hash identifier: CX88l2zdnCvUhAmqftfb4BZT+x4S5U79Dh/WMhLA9mw=
Subject key identifier: BC:E1:F8:FD:A9:6D:BC:6E:33:5B:6D:C8:AB:4A:FC:38:4D:D7:8C:56
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 0197EEFF27DE117EBC342EAAEBB525428E88
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/vOH4_altvG4zW23Iq0r8OE3XjFY.roa
Signing time: Wed 09 Jul 2025 11:43:08 +0000
ROA not before: Wed 09 Jul 2025 11:43:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207879
IP address blocks: 93.127.158.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 25 Jul 2025 15:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ee:ff:27:de:11:7e:bc:34:2e:aa:eb:b5:25:42:8e:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Jul 9 11:43:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bce1f8fda96dbc6e335b6dc8ab4afc384dd78c56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:74:3b:82:90:5b:2f:ba:bc:f3:43:0c:a2:71:
0a:bc:13:1a:e3:c4:22:82:82:5d:0f:c7:e7:bb:bf:
ab:e4:f7:82:c3:00:0f:3a:04:21:a8:d5:83:31:b4:
6b:00:fe:05:8d:58:f1:b1:9f:65:17:cd:43:a4:54:
e1:7e:f2:69:8a:d5:df:fe:42:af:0d:3b:54:f6:7a:
c2:98:0b:c0:47:ce:2f:05:6a:f4:31:f9:13:38:96:
e5:2d:5f:6d:70:21:4e:2b:43:0c:de:f9:3e:6a:3e:
7b:9b:1d:1b:32:d5:e8:92:75:17:6d:9c:d2:73:b3:
27:a8:de:60:98:b5:42:e9:46:06:47:ea:3a:fd:4f:
66:79:af:df:7e:21:e2:3a:65:b9:d9:37:4a:0a:c9:
e2:65:2f:28:49:22:b6:41:cf:89:0f:4c:97:c4:59:
e4:01:f7:28:81:c4:d1:2e:95:45:9f:10:01:73:56:
7e:2f:ad:28:86:a6:3d:9f:a3:8d:6d:f3:02:4b:51:
ee:97:03:af:f3:79:35:9b:90:2f:c3:c4:4f:59:9a:
ce:36:f0:60:03:c3:d2:aa:8b:92:84:af:05:3d:0c:
f1:d7:55:4c:76:98:31:6a:b4:b4:3a:a2:b8:4e:60:
a1:19:40:50:b8:5d:65:a4:81:b2:f5:aa:3f:79:67:
41:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:E1:F8:FD:A9:6D:BC:6E:33:5B:6D:C8:AB:4A:FC:38:4D:D7:8C:56
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/vOH4_altvG4zW23Iq0r8OE3XjFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.127.158.0/23
Signature Algorithm: sha256WithRSAEncryption
c3:0d:f0:ae:5d:31:64:01:b8:ec:ae:3c:88:92:40:bf:c0:95:
6c:b8:f9:03:17:f6:61:61:81:c1:1c:ea:e3:16:b9:4c:d2:a7:
c4:33:ef:98:5c:b6:8b:00:7b:6a:55:15:7a:19:93:17:13:e9:
27:87:c4:c7:ef:c5:28:85:a5:96:86:90:9b:e1:cf:35:dd:3e:
7d:e4:e9:3a:c0:86:d5:44:8e:d7:62:3a:47:55:83:05:7d:f5:
72:35:b1:e7:01:3f:1c:2e:11:01:e0:b1:4e:0b:47:58:c6:97:
cf:81:da:01:c2:bc:a2:f9:6c:a5:48:00:98:62:14:0e:0e:32:
8e:5c:e9:fb:35:a4:7c:45:31:99:58:ed:aa:ae:cd:85:59:d7:
7e:df:e7:c7:cc:4c:4d:a3:c6:a5:33:9e:c7:cc:d2:a5:1c:bc:
75:df:f3:e9:3f:c4:c7:43:93:6f:a3:7f:33:08:93:a2:b5:36:
82:e9:bc:15:42:01:f3:66:08:e8:4c:e3:8e:a7:d2:0d:07:c9:
5f:b5:f4:1a:10:ce:32:5b:55:91:9d:bf:07:e4:ab:22:a3:9a:
f7:56:7d:92:6e:cf:6d:a3:b3:12:f0:b7:77:b9:28:0f:43:2f:
cd:5b:5f:e0:a0:69:af:4d:24:ae:36:f1:21:34:f2:9d:4d:58:
da:09:e7:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 00:40:14 2025 by rpki-client